$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft File: tADiGrPTJXQtuHeDDrxEB233CUg.mft (raw, json) Hash identifier: 3yCJngcyJgApO7nSkcEQp4YvkLonxTo3mjfiVsLHhHI= Subject key identifier: 94:81:BA:A3:87:EA:88:5E:3A:F5:FC:CD:DF:9B:80:E0:8D:7C:F8:3A Authority key identifier: B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 Certificate issuer: /CN=A91658EF/serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Certificate serial: 0F0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft Manifest number: 2BA1 Signing time: Sat 14 Jun 2025 16:46:11 +0000 Manifest this update: Sat 14 Jun 2025 16:46:10 +0000 Manifest next update: Sat 21 Jun 2025 16:46:10 +0000 Files and hashes: 1: tADiGrPTJXQtuHeDDrxEB233CUg.crl (hash: 9r/sLxLNyA0WsPmemw4idVU49rydSmJ5aw/5b1kswAk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:46:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3851 (0xf0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Validity Not Before: Jun 14 16:46:10 2025 GMT Not After : Jun 21 16:46:10 2025 GMT Subject: CN=684da752-70f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ff:4b:63:a2:5f:db:2b:6e:00:f5:8e:e9:f3: 50:18:0d:53:3b:88:d1:44:28:27:b7:99:98:cf:a2: 52:a4:fb:40:bf:61:eb:21:3e:53:85:f4:4a:54:2f: aa:ae:aa:3f:b7:ae:2c:47:64:5a:79:02:ba:45:70: ac:b4:f5:b8:e5:d9:3c:dd:6a:b5:dd:ac:c4:fd:2b: 46:0b:a9:6e:1a:04:1b:26:f9:c6:8d:eb:68:d9:3d: 7e:20:c9:fa:0a:55:98:f0:22:63:74:4f:ce:98:54: db:50:4e:5f:fb:7d:78:4a:cf:ab:36:77:f5:34:39: 4d:0c:f3:f9:d0:11:eb:73:88:6d:44:c9:9d:92:5b: 84:77:95:f6:b8:07:df:87:8b:c6:ae:3c:66:03:63: d4:84:5d:d2:ec:b7:0a:10:e1:96:98:40:47:0c:c0: 4c:6c:85:6b:02:32:b8:b5:50:05:a0:c5:8e:fb:21: a6:24:c9:88:dd:4c:51:8b:c2:05:73:40:46:1c:7a: e4:53:92:33:67:c5:f9:80:c7:c5:02:e8:fe:fd:15: df:09:51:e2:af:8b:72:e5:15:6b:23:74:09:2d:2f: 4b:76:bc:e5:5e:07:8c:70:ce:b8:d8:8c:03:46:a8: 8e:cc:46:c9:b9:e0:ce:02:f8:bc:ef:b2:24:4c:1b: 52:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:81:BA:A3:87:EA:88:5E:3A:F5:FC:CD:DF:9B:80:E0:8D:7C:F8:3A X509v3 Authority Key Identifier: keyid:B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:9e:87:b6:81:1b:6c:1f:0e:26:48:ba:21:6c:69:1c:71:3c: 8a:51:59:17:f0:39:3a:f5:0c:81:4d:9c:81:88:79:87:63:46: 33:62:d3:1a:fb:80:85:65:3e:8a:d7:34:57:4d:1c:24:2f:67: 6e:c8:5f:b4:01:b0:6f:ca:7d:7d:23:e3:e8:92:45:e9:8b:e1: 05:be:57:bf:bb:ef:e0:05:0f:33:60:37:40:7d:df:d0:1f:3d: 25:67:7e:a8:47:e9:55:65:40:ae:bb:0a:01:23:0b:0f:01:f6: ea:50:ec:9c:70:66:9e:a6:14:9a:a7:18:41:fe:ce:52:c3:d9: f6:cd:fc:3a:b5:a2:16:8e:e8:16:77:d8:81:86:3f:5f:fa:79: ba:c2:69:7e:22:cf:14:e5:fd:75:90:15:e7:a6:a8:9f:1d:c3: e2:2d:4c:7c:b4:2c:c6:ca:0a:ba:d2:b5:69:a1:00:09:45:87: 35:eb:68:c1:0c:1b:f7:e4:dd:e2:98:60:15:78:23:7d:7f:80: 90:3d:e1:34:d2:d2:d7:1b:d6:b5:66:8b:3e:da:40:13:d2:b6: 3a:ea:91:f7:78:da:74:00:3c:ea:24:d2:eb:31:ab:1c:81:4f: 78:54:07:ec:c4:99:04:7c:bc:70:f8:0e:fb:04:62:43:78:f7: 13:f2:b0:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKEI0MDBFMjFBQjNEMzI1NzQyREI4Nzc4MzBFQkM0NDA3 NkRGNzA5NDgwHhcNMjUwNjE0MTY0NjEwWhcNMjUwNjIxMTY0NjEwWjAYMRYwFAYD VQQDEw02ODRkYTc1Mi03MGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtv9LY6Jf2ytuAPWO6fNQGA1TO4jRRCgnt5mYz6JSpPtAv2HrIT5ThfRKVC+q rqo/t64sR2RaeQK6RXCstPW45dk83Wq13azE/StGC6luGgQbJvnGjeto2T1+IMn6 ClWY8CJjdE/OmFTbUE5f+314Ss+rNnf1NDlNDPP50BHrc4htRMmdkluEd5X2uAff h4vGrjxmA2PUhF3S7LcKEOGWmEBHDMBMbIVrAjK4tVAFoMWO+yGmJMmI3UxRi8IF c0BGHHrkU5IzZ8X5gMfFAuj+/RXfCVHir4ty5RVrI3QJLS9LdrzlXgeMcM642IwD RqiOzEbJueDOAvi877IkTBtSawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJSBuqOH 6oheOvX8zd+bgOCNfPg6MB8GA1UdIwQYMBaAFLQA4hqz0yV0Lbh3gw68RAdt9wlI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpYUXR1SGVERHJ4RUIyMzND VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RBRGlHclBUSlhRdHVIZUREcnhFQjIzM0NVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpY UXR1SGVERHJ4RUIyMzNDVWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBnoe2gRtsHw4mSLohbGkccTyKUVkX8Dk69QyBTZyBiHmHY0YzYtMa +4CFZT6K1zRXTRwkL2duyF+0AbBvyn19I+PokkXpi+EFvle/u+/gBQ8zYDdAfd/Q Hz0lZ36oR+lVZUCuuwoBIwsPAfbqUOyccGaephSapxhB/s5Sw9n2zfw6taIWjugW d9iBhj9f+nm6wml+Is8U5f11kBXnpqifHcPiLUx8tCzGygq60rVpoQAJRYc162jB DBv35N3imGAVeCN9f4CQPeE00tLXG9a1Zos+2kAT0rY66pH3eNp0ADzqJNLrMasc gU94VAfsxJkEfLxw+A77BGJDePcT8rAB -----END CERTIFICATE-----Generated at Sun Jun 15 08:44:23 2025 by rpki-client